Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> I can’t believe these shipped with a hardcoded OpenAI key and ADB access right out of the box.

As someone with a lot of experience in the mobile app space, and tangentially in the IoT space, I can most definitely believe this, and I am not surprised in the slightest.

Our industry may "move fast", but we also "break things" frequently and don't have nearly the engineering rigor found in other domains.






It was a good thing for user privacy that the keys were directly on the device, it is only in DAN mode that a copy of the chats were sent.

So eventually if they remove the keys from the device, messages will have to go through their servers instead.

reply


> It was a good thing for user privacy that the keys were directly on the device

You want to think through that one again? With the OpenAI key on device it means anyone could use that key to call (and bill) OpenAI's APIs. It's absolutely not feasible to ship the OpenAI keys on device.

reply


Sounds good to me, the company I purchased the device from, takes the risk, instead of putting my own privacy at risk. Sounds like a good deal.

reply


This is not a serious argument.

reply




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: